1666f7ff986741ae9ebd9c3d77f4b1e8931e32ebff32aa84e11cd08bfb081bee | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1666f7ff986741ae9ebd9c3d77f4b1e8931e32ebff32aa84e11cd08bfb081beeN
Size

88KB
Sample

241005-d4lf7atajj
MD5

ed05a5a89f6e2045fc8f9eb6fa486640
SHA1

bf643f6fb3ec5d602d1c043e95ae368b66b2af41
SHA256

1666f7ff986741ae9ebd9c3d77f4b1e8931e32ebff32aa84e11cd08bfb081bee
SHA512

c224b7c63e383d3031a4b3679bca0fb1e2f57c4efa86b273c32c6bae820c404c59a97d3105ed477f53dc77260f2b1b8f5da4b256c961818a5988373782bc477f
SSDEEP

1536:8h7xsCKosi5pzjIcdRiTpqMGxs3dh7xsCKosi5pzjIcdRiTpqMGxs3f:8EhWbcpqIdEhWbcpqIf

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  1666f7ff986741ae9ebd9c3d77f4b1e8931e32ebff32aa84e11cd08bfb081beeN
- Size
  
  88KB
- MD5
  
  ed05a5a89f6e2045fc8f9eb6fa486640
- SHA1
  
  bf643f6fb3ec5d602d1c043e95ae368b66b2af41
- SHA256
  
  1666f7ff986741ae9ebd9c3d77f4b1e8931e32ebff32aa84e11cd08bfb081bee
- SHA512
  
  c224b7c63e383d3031a4b3679bca0fb1e2f57c4efa86b273c32c6bae820c404c59a97d3105ed477f53dc77260f2b1b8f5da4b256c961818a5988373782bc477f
- SSDEEP
  
  1536:8h7xsCKosi5pzjIcdRiTpqMGxs3dh7xsCKosi5pzjIcdRiTpqMGxs3f:8EhWbcpqIdEhWbcpqIf
Score

8^/10

discovery persistence
- Event Triggered Execution: Image File Execution Options Injection
  persistence
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Image File Execution Options Injection

Privilege Escalation

Event Triggered Execution

Change Default File Association

Image File Execution Options Injection

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence